Don’t Acquire Your Next Breach: Managing Vendor Risk Under the GDPR

  • Date 05 Jun 2019

Don’t Acquire Your Next Breach: Managing Vendor Risk Under the GDPR

05 Jun 2019, 11:45 - 12:45

Information Security Exchange

Managing vendor risk before, during and after onboarding is a continuous effort under the GDPR and impending data protection regulations. While outsourcing operations to third and fourth-party vendors can alleviate business problems and needs, it often comes with the risk of acquiring a breach. To streamline risk, organisations must prioritise privacy and security “by design” to improve their programmes and secure sufficient vendor guarantees to effectively work together during an audit, incident – or more. You’ll learn how to implement a successful vendor risk management process and explore helpful tips and real-world advice to improve your privacy and security programmes.

Learning Outcomes:

  1. Breakdown GDPR regulation, scope, and the new legal obligations it presents for vendor risk management
  2. Identify priorities before, during, and after vendor procurement
  3. Secure sufficient guarantees from vendors to efficiently work together during audits or incidents
  4. Hear real case studies from privacy experts on how to practically tackle vendor risk under the GDPR



  • Linda Thielová


    Data Privacy Counsel


    Linda Thielová serves as Data Privacy Counsel at OneTrust, the largest and most widely used dedicated privacy management technology platform for...

Business Issues covered

  1. What will this session help you to do?
    • Mitigate the effects of new vulnerabilities and exploits‎
    • Understand internal and external threats and keep a business secure‎




We use cookies to operate this website and to improve its usability. Full details of what cookies are, why we use them and how you can manage them can be found by reading our Privacy & Cookies page. Please note that by using this site you are consenting to the use of cookies.